Active Directory Integration (ADI) - Adding Multiple "Domain Users" from multiple forest locations

if you have multiple forests that need to be added and you need to keep them separated, you will run into a problem that has an easy fix. The Knowbe4 ADI can only push up one "object" called "Domain Users", because it only looks at the spelling "Domain Users"; it does not look at the domain spelling of your other forest locations. If you try to add the objects below for example, the ADI will create the first one and generate an error "Name has already been taken" for the others.

to add the following:

usa.mydomain.net\Domain Users
mx.mydomain.net\Domain Users
eu.mydomain.net\Domain Users
cn.mydomain.net\Domain Users
br.mydomain.net\Domain Users

you need to create an OU for each and nest the corresponding Domain Users object within the OU. You may read that the documentation states that it does not support nested groups, but this nesting works.

Solution:
USA KnowBe4 Users         (Member: usa.mydomain.net\Domain Users)
MX KnowBe4 Users           (Member: mx.mydomain.net\Domain Users)
EU KnowBe4 User             (Member: eu.mydomain.net\Domain Users)
CN KnowBe4 Users           (Member: cn.mydomain.net\Domain Users)
BR KnowBe4 Users            (Member: br.mydomain.net\Domain Users)

Hope that helps